So this week end i watched a movie on Youtube "Algorithm" and the main character made a "can" that has some electronics on it, like a raspberry pi or a arduino FOR EXAMPLE, and i would know if is it able to do one and probably some who can tell me how to make one,, so with that he leaves that in a house and then the can searche for wifi networks who are vulnerable with the reaver (routers beetwen 2009-+-2012) and when cracked it makes a MITM attack to hijack gmail account and then send to his computer EVERYTHING it caches, if anyone hasn´t any ideia of what i´m talking about heres the link of the movie.
Forum Thread: Can
- Hot
- Active
-
Forum Thread: Changing IP Address 9 Replies
1 day ago -
Forum Thread: When My Kali Linux Finishes Installing (It Is Ready to Boot), and When I Try to Boot It All I Get Is a Black Screen. 8 Replies
1 wk ago -
Forum Thread: HACK ANDROID with KALI USING PORT FORWARDING(portmap.io) 12 Replies
2 wks ago -
Forum Thread: Hydra Syntax Issue Stops After 16 Attempts 2 Replies
1 mo ago -
Forum Thread: Hack Instagram Account Using BruteForce 208 Replies
1 mo ago -
Forum Thread: Metasploit reverse_tcp Handler Problem 47 Replies
3 mo ago -
Forum Thread: How to Train to Be an IT Security Professional (Ethical Hacker) 22 Replies
3 mo ago -
Metasploit Error: Handler Failed to Bind 41 Replies
3 mo ago -
Forum Thread: How to Hack Android Phone Using Same Wifi 21 Replies
3 mo ago -
How to: HACK Android Device with TermuX on Android | Part #1 - Over the Internet [Ultimate Guide] 177 Replies
3 mo ago -
How to: Crack Instagram Passwords Using Instainsane 36 Replies
3 mo ago -
Forum Thread: How to Hack an Android Device Remotely, to Gain Acces to Gmail, Facebook, Twitter and More 5 Replies
3 mo ago -
Forum Thread: How Many Hackers Have Played Watch_Dogs Game Before? 13 Replies
4 mo ago -
Forum Thread: How to Hack an Android Device with Only a Ip Adress 55 Replies
5 mo ago -
How to: Sign the APK File with Embedded Payload (The Ultimate Guide) 10 Replies
5 mo ago -
Forum Thread: How to Run and Install Kali Linux on a Chromebook 18 Replies
5 mo ago -
Forum Thread: How to Find Admin Panel Page of a Website? 13 Replies
6 mo ago -
Forum Thread: can i run kali lenux in windows 10 without reboting my computer 4 Replies
6 mo ago -
Forum Thread: How to Hack School Website 11 Replies
6 mo ago -
Forum Thread: Make a Phishing Page for Harvesting Credentials Yourself 8 Replies
6 mo ago
-
How To: Crack SSH Private Key Passwords with John the Ripper
-
How To: Use SQL Injection to Run OS Commands & Get a Shell
-
How To: Use Burp & FoxyProxy to Easily Switch Between Proxy Settings
-
How To: Crack Password-Protected Microsoft Office Files, Including Word Docs & Excel Spreadsheets
-
How To: Dox Anyone
-
How To: Crack Shadow Hashes After Getting Root on a Linux System
-
How To: Find Vulnerable Webcams Across the Globe Using Shodan
-
How To: Exploit WebDAV on a Server & Get a Shell
-
How To: Exploit EternalBlue on Windows Server with Metasploit
-
How To: Enumerate SMB with Enum4linux & Smbclient
-
How to Hack Wi-Fi: Stealing Wi-Fi Passwords with an Evil Twin Attack
-
How To: Spy on Traffic from a Smartphone with Wireshark
-
Tutorial: Create Wordlists with Crunch
-
How To: Phish for Social Media & Other Account Passwords with BlackEye
-
How To: Use SpiderFoot for OSINT Gathering
-
How To: Crack Any Master Combination Lock in 8 Tries or Less Using This Calculator
-
How To: Use Kismet to Watch Wi-Fi User Activity Through Walls
-
How To: Perform Advanced Man-in-the-Middle Attacks with Xerosploit
-
Android for Hackers: How to Turn an Android Phone into a Hacking Device Without Root
-
How to Hack Wi-Fi: Get Anyone's Wi-Fi Password Without Cracking Using Wifiphisher
19 Responses
Why not just find a public AP, like a train station free WiFi, breach that and reap the rewards.
Or better yet, create an Evil Twin public AP.
I feel one of these two solutions would be much easier to pull off, but that's just me.
ghost_
Yes, i read that tutorials too, and practiced them, but the both ways are effective, and i was asking if i can or any one can do one of these and tell me.
It sounds like a pineapple.
You could easily install kali on an android phone then ssh back to it and use it the same way and actually use it for even more malicious purposes.
Just to join the topic: right now the android one is my best way to go. I was able to install not only Kali but also some very interesting apps for pentesting that automate Mitms in a very clean and reliable way.
If anyone is interested, I have written a guide about this and I'm slowly updating it with tools.
The only very big difference is that my Android is not capable of switching to promiscuous mode. Uff.
You know I wanna read it.
Is there already a tutorial in NullByte on how to install Kali on an android phone?
Yep, is my latest article here.
Hack the router and then remotely do anything?
Just about. You can do a Man in the Middle, etc.
Exmpl.: from my house to another part of the world. with what? public ip?
a question about man in the middle attack...now adays almost all traffic are encrypted... infact was trying to steal my cousins password to a particular site on our network...since we all connect to the same ap..only hexadecimal stuff which meant nothing...so is man in the middle that valuable nowadays? if yes how... ? am i left with only pwning his box?
If you are using the same AP and same PSK, you can crack the encryption with the PSK. The airdecap tool can do that.
hello sir OTW,
which is more effective on mitm, airdecap-ng or sslstrip + ettercap or arpspoof + dsniff + packet forwarding ?
SSLStrip + iptables prerouting + ettercap + urlsnarf = What's in your wallet.
hello sir hitchhiker,
whenever i tried to use sslstrip + ettercap + urlsnarf, the browser on the victim computer prevent the victim from entering their credentials (e.g facebook) and sometimes it wont let the user browse the internet.
Does this attack still work effectively ?
Hallo, Well I don't edit any of the .conf files the iptables entry takes care of that. Also I am doing this over wlan not eth. Arpspoof instead of ettercap plugin.
echo 1 > /proc/sys/net/ipv4/ip_forward
iptables -t nat
sslstrip -k -l
arpspoof
urlsnarf
ettercap -T -q
Running lab the other day I got MiTM pop ups 2/10 times. Probably from zed running too.
thanks for the reply :), i will try you method lol
i also notice that whenever i tried to connect windows 7/8 computer to my static AP (ettercap + sslstrip + urlsnarf + airbase-ng +dsniff). My wireless adapter will stop working, do you have the same problem ?
i'm using easy-creds script btw lol
I go intermittent sometimes when the swap starts to fill up.
(Side note to the down voter:Ha ha you cant down vote every one.)
thanks for the info :)
Share Your Thoughts